Re: security warning

Alan Cox (
Tue, 16 Dec 1997 10:37:19 +0000 (GMT)

> I would strongly suggest the following patch:
> I hope that patch gets in the kernel soon, default to "Y".

Why do we want a patch breaking symbolic links and several applications.
Fix the applications or fix the use of /tmp even better still.

There is a symlink bug in 2.1.x but this isnt it. The one that needs fixing
is open O_EXCL and O_CREAT ahouldnt follow or ignore existing symlinks
dangling or otherwise. That broke somewhere with dentries and hasnt yet
got fixed to be correct as 2.0 is. Without this sendmail and stuff arent
terribly secure on 2.1.x.

That shouldnt be too hard to fix